$ rpki-client -vvf rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/06ED25D2A7CF11F0927DA829C4F9AE02.roa File: 06ED25D2A7CF11F0927DA829C4F9AE02.roa (raw, json) Hash identifier: 4+Fz/s7urhRbpWxiqcwm2WW31Se8f+bopMU0fcrID14= Subject key identifier: B2:0F:83:E5:D6:2E:57:54:43:FA:C1:79:51:34:45:B7:28:E7:32:A6 Certificate issuer: /CN=A91C430B/serialNumber=D19BB68E3CCDC4B78CE36F87F94E7F7105123A24 Certificate serial: 06 Authority key identifier: D1:9B:B6:8E:3C:CD:C4:B7:8C:E3:6F:87:F9:4E:7F:71:05:12:3A:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/06ED25D2A7CF11F0927DA829C4F9AE02.roa Signing time: Mon 13 Oct 2025 00:54:51 +0000 ROA not before: Mon 13 Oct 2025 00:54:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154295 IP address blocks: 138.252.40.0/23 maxlen: 23 138.252.40.0/24 maxlen: 24 138.252.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.crl rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C430B, serialNumber=D19BB68E3CCDC4B78CE36F87F94E7F7105123A24 Validity Not Before: Oct 13 00:54:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68ec4dda-90d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:b6:42:71:1b:85:11:14:ba:ba:86:70:63: fe:06:eb:de:8a:e5:dd:55:1a:20:38:d8:3e:6c:c3: f0:bc:90:84:67:58:22:ae:69:63:31:72:6b:08:54: f6:53:2d:d9:5a:01:e4:06:4f:05:06:bf:42:30:30: 43:dd:fe:81:48:37:00:5c:15:05:16:a3:73:8d:29: b2:2a:ce:70:64:7f:36:37:8d:e8:9a:1c:a0:22:9f: 48:73:4c:52:16:84:41:a9:79:b3:ac:14:b5:f6:dc: 4a:ef:63:f1:9e:fb:d7:f7:fa:b4:0b:e1:cd:e9:25: f9:17:b0:8a:ba:86:1d:f0:a4:77:6d:71:27:45:21: 64:11:0c:1d:47:83:8c:3e:c4:af:25:bf:d0:f6:c5: a0:0c:f6:1f:08:b8:5c:bb:70:44:bd:b7:ee:7b:53: 9e:24:05:22:89:a8:a6:d3:e0:3b:9f:67:e2:b3:f3: 03:59:eb:54:a5:03:7b:73:5b:fd:db:b4:c4:7c:e2: 2c:75:27:92:86:fc:f7:57:ea:c4:47:a9:39:b2:63: 3c:2f:2d:55:90:d8:a9:05:f6:35:ac:86:82:60:c3: 70:88:ac:b3:d4:d3:5b:45:df:40:62:33:99:46:84: 75:1b:c4:d4:ee:b7:75:9b:75:a3:3c:e3:a9:1a:b3: b0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0F:83:E5:D6:2E:57:54:43:FA:C1:79:51:34:45:B7:28:E7:32:A6 X509v3 Authority Key Identifier: keyid:D1:9B:B6:8E:3C:CD:C4:B7:8C:E3:6F:87:F9:4E:7F:71:05:12:3A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/06ED25D2A7CF11F0927DA829C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.40.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:da:8f:32:e9:fe:b1:b2:35:0c:96:8f:41:d7:58:39:94:60: c9:4e:de:64:ac:8b:f9:01:6f:d8:83:0d:ec:a8:2c:2b:5a:70: 5f:95:6b:ad:40:51:2c:61:15:4f:d9:97:a5:8e:44:e3:75:84: db:b8:64:8c:b9:6a:fd:e8:a8:68:a7:ff:80:b1:80:9d:6e:5b: 82:d6:c8:09:cc:cf:aa:b0:9c:53:85:1d:f4:f8:9e:e7:01:b0: 58:00:11:17:c8:57:3f:8a:a6:c0:33:76:e0:f3:81:ca:51:de: 82:65:ed:a5:12:c6:74:ed:e3:8a:bc:40:43:79:c9:39:b4:c7: 2e:4d:17:65:d8:e1:65:d7:3f:b5:25:a8:d6:24:09:7f:33:0e: 4e:5b:df:0a:71:99:94:02:a2:5c:28:69:4e:79:7b:c3:c4:30: b1:ab:58:d0:31:75:1c:c0:0f:15:01:84:51:f8:b7:16:4c:54: 6e:f9:3c:e1:8d:b7:64:bf:71:16:d3:09:24:0b:85:dc:17:b6: 94:49:55:7f:a7:1c:b9:85:48:ed:88:b4:a7:94:08:d4:99:92: 42:b3:a1:a7:50:b3:69:3c:87:b2:ab:11:5a:68:e1:47:23:34: 53:1e:12:a5:3d:e3:cb:97:10:49:a8:3b:35:33:72:43:e9:27: 8e:4d:0f:82 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDMwQjExMC8GA1UEBRMoRDE5QkI2OEUzQ0NEQzRCNzhDRTM2Rjg3Rjk0RTdGNzEw NTEyM0EyNDAeFw0yNTEwMTMwMDU0NTFaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWM0ZGRhLTkwZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5arZCcRuFERS6uoZwY/4G696K5d1VGiA42D5sw/C8kIRnWCKuaWMxcmsIVPZT LdlaAeQGTwUGv0IwMEPd/oFINwBcFQUWo3ONKbIqznBkfzY3jeiaHKAin0hzTFIW hEGpebOsFLX23ErvY/Ge+9f3+rQL4c3pJfkXsIq6hh3wpHdtcSdFIWQRDB1Hg4w+ xK8lv9D2xaAM9h8IuFy7cES9t+57U54kBSKJqKbT4DufZ+Kz8wNZ61SlA3tzW/3b tMR84ix1J5KG/PdX6sRHqTmyYzwvLVWQ2KkF9jWshoJgw3CIrLPU01tF30BiM5lG hHUbxNTut3WbdaM846kas7BhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsg+D5dYu V1RD+sF5UTRFtyjnMqYwHwYDVR0jBBgwFoAU0Zu2jjzNxLeM42+H+U5/cQUSOiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MzBCLzgyMzZFMjYwQTdD RTExRjA5Nzg5NDUyOEM0RjlBRTAyLzBadTJqanpOeExlTTQyLUgtVTVfY1FVU09p US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFp1Mmpqek54TGVNNDItSC1VNV9jUVVTT2lRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDMwQi84MjM2RTI2MEE3Q0UxMUYwOTc4OTQ1MjhDNEY5QUUwMi8wNkVEMjVEMkE3 Q0YxMUYwOTI3REE4MjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8KDANBgkqhkiG9w0BAQsFAAOCAQEAn9qPMun+sbI1DJaP QddYOZRgyU7eZKyL+QFv2IMN7KgsK1pwX5VrrUBRLGEVT9mXpY5E43WE27hkjLlq /eioaKf/gLGAnW5bgtbICczPqrCcU4Ud9Pie5wGwWAARF8hXP4qmwDN24POBylHe gmXtpRLGdO3jirxAQ3nJObTHLk0XZdjhZdc/tSWo1iQJfzMOTlvfCnGZlAKiXChp Tnl7w8QwsatY0DF1HMAPFQGEUfi3FkxUbvk84Y23ZL9xFtMJJAuF3Be2lElVf6cc uYVI7Yi0p5QI1JmSQrOhp1CzaTyHsqsRWmjhRyM0Ux4SpT3jy5cQSag7NTNyQ+kn jk0Pgg== -----END CERTIFICATE-----Generated at Sun Oct 19 07:09:21 2025 by rpki-client